28 matches found
EUVD-2021-10898
Malware in sbrugna...
EUVD-2021-16452
Malware in sbrugna...
EUVD-2018-4356
Malware in sbrugna...
EUVD-2020-19478
Malware in sbrugna...
EUVD-2014-1603
Malware in sbrugna...
EUVD-2022-44207
Malicious code in bioql PyPI...
EUVD-2023-29655
Malicious code in bioql PyPI...
EUVD-2023-33088
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2021-23976
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When accepting a malicious intent from other installed apps, Firefox for Android accepted manifests from arbitrary file paths and allowed declaring webapp...
Linux Distros Unpatched Vulnerability : CVE-2023-6868
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In some instances, the user-agent would allow push requests which lacked a valid VAPID even though the push manager subscription defined one. This could allow...
CVE-2025-6428 Firefox for Android opened URLs specified in a link querystring parameter
When a URL was provided in a link querystring parameter, Firefox for Android would follow that URL instead of the correct URL, potentially leading to phishing attacks. This bug only affects Firefox for Android. Other versions of Firefox are unaffected.. This vulnerability was fixed in Firefox 140...
CVE-2022-36317
When visiting a website with an overly long URL, the user interface would start to hang. Due to session restore, this could lead to a permanent Denial of Service. This bug only affects Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox 103...
CVE-2022-22749
When scanning QR codes, Firefox for Android would have allowed navigation to some URLs that do not point to web content. This bug only affects Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox 96...
CVE-2021-29963
Address bar search suggestions in private browsing mode were re-using session data from normal mode. This bug only affects Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox 89...
CVE-2020-26975
When a malicious application installed on the user's device broadcast an Intent to Firefox for Android, arbitrary headers could have been specified, leading to attacks such as abusing ambient authority or session fixation. This was resolved by only allowing certain safe-listed headers. Note: This...
CVE-2025-4090
A vulnerability existed in Thunderbird for Android where potentially sensitive library locations were logged via Logcat. This vulnerability was fixed in Firefox 138 and Thunderbird 138...
CVE-2025-1940 Android Intent confirmation prompt tapjacking using Select options
A select option could partially obscure the confirmation prompt shown before launching external apps. This could be used to trick a user in to launching an external app unexpectedly. This issue only affects Android versions of Firefox.. This vulnerability was fixed in Firefox 136...
CVE-2024-6605 Firefox Android missed activation delay to prevent tapjacking
Firefox Android allowed immediate interaction with permission prompts. This could be used for tapjacking. This vulnerability affects Firefox 128...
Mozilla Firefox for Android Spoofing Vulnerability (CNVD-2024-23342)
Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox for Android suffers from a spoofing vulnerability that can be exploited by attackers to conduct spoofing attacks by convincing a victim to visit a specially crafted Web site...
CVE-2023-29546
When recording the screen while in Private Browsing on Firefox for Android the address bar and keyboard were not hidden, potentially leaking sensitive information. This bug only affects Firefox for Android. Other operating systems are unaffected. This vulnerability affects Firefox for Android 112...